Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.
Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.




Network Security Snort-Users
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

RE: [Snort-users] learning snort

from [Patrick Walsh] Network Security [Permanent Link]
Subject: RE: [Snort-users] learning snort
Date: Thu, 29 Sep 2005 09:12:39 -0600 
-----Original Message-----
From: snort-users-admin@lists.sourceforge.net
[mailto:snort-users-admin@lists.sourceforge.net] On Behalf Of James B
Horwath
Sent: Wednesday, September 28, 2005 3:46 PM
To: snort-users@lists.sourceforge.net
Subject: [Snort-users] learning snort

I am in the process of studying for the GCIA second exam which covers snort
setup and use.  I have been reading the mailing list, snort documentation
and playing with a small controlled snort setup. Although RTFM is great, I
learn better by actually doing hands on things.  I am using a packet
crafting tool like hping2 to watch and learn how snort works.  I have been
reading about tools like snot which use the snort configuration and build
packets based on the configuration.  This seems like an ideal way to learn


        I think you're thinking of sneeze.  It didn't work for me when I tried
it, but I didn't dig very deep into it.  It used to be in the contribs
section of the snort.org site, but I don't see it there anymore, so
perhaps it has been retired.  A google search for "snort sneeze" found
the perl script though.

-- 
Patrick Walsh
eSoft Incorporated
303.444.1600 x3350
http://www.esoft.com/

Attachment: signature.asc
Description: This is a digitally signed message part

[More with this subject...]




<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  Re: [Snort-users] How to test snort inline, Dino Dragovic
Next by Date:  [Snort-users] Snort 2.4.2 with ClamAV, Bill Warren
Previous by Thread:  RE: [Snort-users] learning snort, Andre' M. DiMino
Next by Thread:  [Snort-users] Any problems with Snort 2.3 config file in 2.4.1?, Bill Warren
Indexes:  [Date] [Thread] [Top] [All Lists]